Archive for May 19th, 2006
PHP Developer - May 19th, 2006
According to this forum post on the NeoSmart message boards, there’s a new “0-day vulnerability” that they’ve discovered in the phpBB message board system.
Our research team has discovered a new (aka 0-day) vulnerability in phpBB, that affects all existing versions (including the Olympus CVS as of May 18th, 2006).
This phpBB security vulnerability has been scaled at a threat level of 6/10; allowing normal members access to privileged and restricted-access content on a phpBB forum. The bug lies in the email notification system and can be used to track comments made on any hidden posts that were once user accessible.
Since this bug has just broken today, there’s no response from phpBB as of yet with a patch, but expect it soon if this issue is as important as the post mentions.
(0 comments)
Continue Reading ·
PHP Developer - May 19th, 2006
The Zend Developer Zone has a new post covering the leadership change that just happened in the world of the Zend Framework. Mike Naberezny has moved forward to pursue other things and Jayson Minard has stepped up to fill the spot left. The post also shares the (lengthy) email that Jayson sent out to the list getting all of his ideas and intentions out in the open.
Hello everyone, I wanted to quickly introduce myself as the new lead for the Zend Framework for Zend. I will be stepping into Mike’s role in working within the framework development team, and coordinating the effort as a whole. Therefore, let me tell you a bit about myself and my thoughts on this project.
Jayson goes on to talk about himself a bit, his programming past and some of his more current work as the Editor in Chief of the Zend Developer Zone. He also mentions some of the future plans for the framework, including:
- the standardization of the proposal process
- a more consistent release model
- mapping out the scope/purpose/exclusions for each part of the framwork
- plans to handle the growth of user feedback on the project
- and using the Zend Developer Zone to share more information/updates/proposals/etc pertaining to the project
(0 comments)
Continue Reading ·
PHP Developer - May 19th, 2006
The AFUP (Association Française des Utilisateurs de PHP) has officially issued their Call for Papers for their upcoming conference - Forum PHP 2006.
From PHP.net: we are looking for the best French speaking experts, who want to share their know-how and enthusiasm. This two day conference features one technical day, with the most advanced PHP techniques and a business day, with case studies and examples of successful projects.
This year’s conference will be taking place in Paris at the SNHF (Société Nationale d’Horticulture) on Thursday and Friday (the 9th and 10th) of November 2006. You can get more of the details concerning what needs to be in the proposals and how to submit them from this post on the AFUP website.
(0 comments)
Continue Reading ·
PHP Developer - May 19th, 2006
In this new article from the PHP DevCenter on the O’Reilly site today, they provide an introduction to a concept that PHP developers just starting out will definitely need for their future applications - sessions and state management.
MVC Frameworks, such as WASP, provide a solid jumping-off point for entry-level programmers to produce strong, well-formed code. The framework simplifies such things as creating a page (using a kind of page object) and creating or searching for data (using database table objects).
However, probably the most difficult concept for novice PHP programmers to grasp is handling their application’s state and session data. This article will address that issue by providing a simple strategy for state management using the WASP framework.
They start</a. with the difference between session state and page state, and include examples for each. Both examples include code to illustrate the point and some explaination for it each step of the way. All of the sample code is written within the WASP framework, so if you’re unfamiliar, you might want to check out their previous article for an introduction.
(0 comments)
Continue Reading ·
PHP Developer - May 19th, 2006
Despite some apparent time as a nurse for two small furry creatures, Scott Johnson as found time to get back into his “geekiness” in this new post on his blog.
He asks the question: “Is there significant overhead to the is_ functions like is_array, is_object, is_string in php?” He wonders if those kinds of functions, since they are on such a base level, could cause more trouble than their worth when used en masse. He asks because it’s used heavily in an approach for his developing Ookles application.
There’s already been one comment made on the post, and it mentions that they are, in fact, a trivial call to PHP. It’s a simple test that validates simply without much need for too much background action. It does mentions some caveats - is_object, is_resource, and, at times, is_callable.
(0 comments)
Continue Reading ·